Página 2 de 2 PrimeiroPrimeiro 12
+ Responder ao Tópico



  1. #6
    hawk23
    Amigo abaixo segue todo meu squid.conf para vc analisar o que pode ser que esteja errado ... se vc não econtrar erro nenhum .. por favor primeiramente veja se o site está abrindo legal .sem problemas, - www.citibank.com.br e depois se vc puder me manda com quais opções se squid foi compilado .

    Desde já grato



    ###########################################################################
    # Define a porta padrao para proxy tranparente do squid
    #
    http_port 3128

    ###########################################################################
    # Porta para o MRTG gerar relatorios graficos da utilização do Squid
    #

    #snmp_port 3401

    # Porta para o squid receber requisições ICP responsavel por cache
    # hierarquico
    #
    #icp_port 3130

    ###########################################################################
    # Define a utilizacao do squid como proxy transparente
    #
    httpd_accel_port 80
    httpd_accel_host virtual
    httpd_accel_single_host off
    httpd_accel_with_proxy on
    httpd_accel_uses_host_header on
    forwarded_for on

    ###########################################################################
    # Define usuario e grupo do diretorio /cache
    #
    cache_effective_user squid
    cache_effective_group squid

    ###########################################################################
    # Conbfiguracoes adicionais para o Cache Diguest
    #
    #digest_generation on
    #digest_bits_per_entry 5
    #digest_rebuild_period 1 hour
    #digest_rewrite_period 1 hour
    #digest_swapout_chunk_size 4096 bytes
    #digest_rebuild_chunk_percentage 10

    ###########################################################################
    # Define variaveis de configuracao do diretorio /cache
    #
    #cache_dir diskd /cache 3000 16 256 Q1=64 Q2=72
    #cache_dir diskd /cache/ 256 16 256 Q1=64 Q2=72

    cache_dir ufs /cache 17000 16 256
    cache_mem 264 MB
    cache_swap_low 97
    cache_swap_high 98

    #cgi-bins will not be cached.
    #
    #acl QUERY urlpath_regex cgi-bin \?
    #no_cache deny QUERY

    #########################################################################
    # Arquivos de traducao das menssagens de erro
    #
    #error_directory /etc/share/errors/Portuguese

    ###########################################################################
    # Diz qual o tamanho máximo de um arquivo guardado em cache e do guadado
    # em memoria

    maximum_object_size 20240 KB
    store_avg_object_size 13 KB

    ###########################################################################
    # Avisar quando o uso de memoria estiver elevado

    high_memory_warning 0

    ###########################################################################
    # Ainda nao sei pra que server :P

    log_icp_queries off
    buffered_logs off

    ###########################################################################
    # Define quais arquivos de logs seram gerados pelo squid
    # e em qual diretorio eles serao colocado

    cache_access_log /cache/access.log
    cache_log /cache/cache.log
    cache_store_log /cache/store.log

    ###########################################################################
    # Define a rotatividade dos aquivos de log
    #
    logfile_rotate 10

    ###########################################################################
    # Define opcoes de reload ou refresh que o usuario pode
    #
    refresh_pattern ^ftp: 1440 20% 10080
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern . 0 20% 4320

    ###########################################################################
    # Definicao de ACL's padrao do squid

    redirect_rewrites_host_header off
    cache_replacement_policy lru

    ###########################################################################
    # Definicoes padrao de rede e portas do squid

    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl SSL_ports port 443 563
    acl Safe_ports port 80 20 21 443 563 70 210 500 1025-65535
    acl Safe_ports port 280
    acl Safe_ports port 488
    acl Safe_ports port 591
    acl Safe_ports port 777
    acl Safe_ports port 873
    acl Safe_ports port 901
    acl CONNECT method CONNECT

    # Variavel responsavel por definir permissoes (allow)
    # ou restrissoes (deny) de acesso para as ACL's

    http_access allow manager localhost
    http_access deny manager
    http_access allow !Safe_ports
    http_access allow CONNECT !SSL_ports

    ###########################################################################
    # ACL's criadas para definir onde ficara contidas as entradas
    # referente a hosts e usuarios liberados

    acl hosts src 192.168.0.0/255.255.255.0
    acl hosts src 172.16.1.0/255.255.255.0

    ###########################################################################
    # Configuracoes do Delay Pools que sao responsaveis pelo controle
    # de banda usada para fazer downloads em uma hora determinada

    acl magic_words1 url_regex -i 192.168
    acl magic_words2 url_regex -i .exe .avi .zip .asf .cab .bin .mov .mpg .mpeg .mp3 .pdf .ogg .gz .tar.gz .tar.bz2 .deb .vqf .iso .wmv .wma .arj .gzip .gsz .cd1.avi .cd2.avi .rar .r00 .r01 .r02 .r03 .r04 .r05 .r06 .r07 .r08 .r09 .r10 .r11 .r12 .r13 .r14 .r15 .r16 .r17 .r18 .r19 .r20 .r21 .r22 .r23 .r24 .r25 .r26 .r27 .r28 .r29 .r30 .r31 .r32 .r33 .r34 .r35 .r36 .r37 .r38 .r39 .r40 .r41 .r42 .r43 .r44 .r45 .r46 .r47 .r48 .r49 .r50 .r51 .r52 .r53 .r54 .r55 .r56 .r57 .r58 .r59 .r60 .gbd3ze
    delay_pools 2
    delay_class 1 2
    delay_parameters 1 -1/-1 -1/-1
    delay_access 1 allow magic_words1
    delay_class 2 2
    delay_parameters 2 50000/128000 50000/128000
    delay_access 2 allow magic_words2

    ###########################################################################
    # Libera acesso ao que nao foi pego pela regras acima

    http_access allow hosts
    http_access allow localhost

    ###########################################################################
    # Nega acesso ao resto
    #
    http_access deny all
    miss_access allow all

  2. #7
    Abutre
    Brother,
    Não sei q erro q abre no seu navegador, mas vc está rejeitando tudo que tenha arquivos com estas extensões : acl magic_words2 url_regex -i .exe .avi .zip .asf .cab .bin .mov .mpg .mpeg .mp3 .pdf .ogg .gz .tar.gz .tar.bz2 .deb .vqf .iso .wmv .wma .arj .gzip .gsz .cd1.avi .cd2.avi .rar .r00 .r01 .r02 .r03 .r04 .r05 .r06 .r07 .r08 .r09 .r10 .r11 .r12 .r13 .r14 .r15 .r16 .r17 .r18 .r19 .r20 .r21 .r22 .r23 .r24 .r25 .r26 .r27 .r28 .r29 .r30 .r31 .r32 .r33 .r34 .r35 .r36 .r37 .r38 .r39 .r40 .r41 .r42 .r43 .r44 .r45 .r46 .r47 .r48 .r49 .r50 .r51 .r52 .r53 .r54 .r55 .r56 .r57 .r58 .r59 .r60 .gbd3ze

    Acho que o citbank, tenta abrir algo parecido e vc bloqueou sites deste tipo !
    Anule esta regra apenas p/ vc fazer um teste. Caso seja isto, terá que descobrir qual extensão de arquivo o site precisa.

    O site está normal aqui !

    qualquer coisa, volta ae...

    Abutre


    ./



  3. #8
    hawk23
    Amigo muito obrigado pela ajuda ... o pro que estava acontecendo era o seguinte ..


    echo 0 > /proc/sys/net/ipv4/tcp_ecn

    Essa linha, pense que quebrei a cabeça pra caramba . valeu mesmo amigo .






Tópicos Similares

  1. Me Ajudem - Problema com DHCP Server Leases.
    Por SlayerCommand no fórum Redes
    Respostas: 19
    Último Post: 19-06-2013, 15:23
  2. terra.com.br com problemas?
    Por Pirigoso no fórum Redes
    Respostas: 3
    Último Post: 13-04-2009, 11:30
  3. Domínio .com.br com IP dinâmico não está funcion
    Por fe_feu no fórum Servidores de Rede
    Respostas: 9
    Último Post: 25-11-2005, 02:44
  4. Problemas com www.serasa.com.br com ou sem proxy
    Por Severo no fórum Servidores de Rede
    Respostas: 15
    Último Post: 21-07-2004, 21:42
  5. Bloquear www.playboy.com.br com IPtables
    Por WebMic no fórum Servidores de Rede
    Respostas: 5
    Último Post: 16-03-2004, 12:43

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L